Update raktest.sh
This commit is contained in:
parent
fe4a894826
commit
509b28c677
52
raktest.sh
52
raktest.sh
|
|
@ -10,21 +10,22 @@ PUBLIC_KEY_PATH="/root/.ssh/id_ed25519.pub"
|
||||||
PUBLIC_KEY=$(cat $PUBLIC_KEY_PATH)
|
PUBLIC_KEY=$(cat $PUBLIC_KEY_PATH)
|
||||||
REMOTE_USER="root"
|
REMOTE_USER="root"
|
||||||
SSH_OPTIONS="-o StrictHostKeyChecking=no"
|
SSH_OPTIONS="-o StrictHostKeyChecking=no"
|
||||||
NEW_HASH=$(mkpasswd -m md5 JebacPISiPO12%)
|
ROOT_PASSWORD="Metro@LGW112%"
|
||||||
|
NEW_HASH=$(mkpasswd -m md5 $ROOT_PASSWORD)
|
||||||
|
HOSTNAME="Sieniawa_Brama3"
|
||||||
WIFI_SSID='MetroTechnika'
|
WIFI_SSID='MetroTechnika'
|
||||||
WIFI_ENCRYPTION='psk2'
|
WIFI_ENCRYPTION='psk2'
|
||||||
WIFI_KEY='JebacPISiPO'
|
WIFI_KEY='Metro@wifi^997^'
|
||||||
WGS_ENDPOINT_HOST="159.255.184.74"
|
WGS_ENDPOINT_HOST="vpn.metrotechnika.com"
|
||||||
WGS_ENDPOINT_PORT="13231"
|
WGS_ENDPOINT_PORT="13231"
|
||||||
WGS_PUBLIC_KEY="yBACTC5+Bxfcd5HvUTALYRVJSWblGTIz23cXaub+KXs="
|
WGS_PUBLIC_KEY="yBACTC5+Bxfcd5HvUTALYRVJSWblGTIz23cXaub+KXs="
|
||||||
WGS_ALLOWED_IPS="0.0.0.0/0"
|
WGS_ALLOWED_IPS="0.0.0.0/0"
|
||||||
WGS_ROUTE_ALL_TRAFFIC="1"
|
WGS_ROUTE_ALL_TRAFFIC="1"
|
||||||
VPN_PRIVATE_KEY="sCsTjj9uPmKyY2sGmiBGCqAZ9C4crRMQqWY06JCjinI="
|
VPN_PRIVATE_KEY=$(wg genkey)
|
||||||
VPN_PUBLIC_KEY="HDBj656TWu/zNzb+QLLQmRW6JUNm9AIIqru8DHdnNAk="
|
VPN_PUBLIC_KEY=$(echo "$VPN_PRIVATE_KEY" | wg pubkey)
|
||||||
VPN_IP_ADDRESS="172.25.0.3/32"
|
VPN_IP_ADDRESS="172.25.0.13/32"
|
||||||
VPN_DNS="8.8.8.8"
|
VPN_DNS="8.8.8.8"
|
||||||
LORAWAN_TTN_HOST="10.130.0.19"
|
LORAWAN_TTN_HOST="10.130.0.19"
|
||||||
HOSTNAME="Brama_test1"
|
|
||||||
echo "🔎 Pobieram MAC adres swojego interfejsu..."
|
echo "🔎 Pobieram MAC adres swojego interfejsu..."
|
||||||
|
|
||||||
OWN_MAC=$(cat /sys/class/net/${INTERFACE}/address | tr '[:lower:]' '[:upper:]')
|
OWN_MAC=$(cat /sys/class/net/${INTERFACE}/address | tr '[:lower:]' '[:upper:]')
|
||||||
|
|
@ -33,7 +34,7 @@ echo "✅ Własny MAC interfejsu $INTERFACE: $OWN_MAC"
|
||||||
|
|
||||||
echo "🎧 Podsłuchuję DHCP pakiety, czekam na bramę..."
|
echo "🎧 Podsłuchuję DHCP pakiety, czekam na bramę..."
|
||||||
|
|
||||||
DEVICE_MAC=$(sudo timeout 60 tcpdump -i $INTERFACE -nn -l -v udp port 67 or udp port 68 \
|
DEVICE_MAC=$(sudo timeout 15 tcpdump -i $INTERFACE -nn -l -v udp port 67 or udp port 68 \
|
||||||
2>/dev/null | \
|
2>/dev/null | \
|
||||||
grep -oEi '([0-9a-f]{2}:){5}[0-9a-f]{2}' | \
|
grep -oEi '([0-9a-f]{2}:){5}[0-9a-f]{2}' | \
|
||||||
grep -vi "$OWN_MAC" | \
|
grep -vi "$OWN_MAC" | \
|
||||||
|
|
@ -69,24 +70,6 @@ sudo ip link set $INTERFACE up
|
||||||
|
|
||||||
echo "✅ Interfejs skonfigurowany."
|
echo "✅ Interfejs skonfigurowany."
|
||||||
|
|
||||||
# Utrzymywanie IP przy restartach sieci
|
|
||||||
echo "🛡️ Uruchamiam watchdog, żeby IP nie zniknęło przy restartach sieci..."
|
|
||||||
|
|
||||||
nohup bash -c "
|
|
||||||
while true; do
|
|
||||||
ip addr show $INTERFACE | grep -q \"$LOCAL_IP\"
|
|
||||||
if [ \$? -ne 0 ]; then
|
|
||||||
echo \"[\$(date)] IP zniknął. Ustawiam ponownie...\"
|
|
||||||
sudo ip addr flush dev $INTERFACE
|
|
||||||
sudo ip addr add ${LOCAL_IP}/24 dev $INTERFACE
|
|
||||||
sudo ip link set $INTERFACE up
|
|
||||||
fi
|
|
||||||
sleep 5
|
|
||||||
done
|
|
||||||
" >/dev/null 2>&1 &
|
|
||||||
|
|
||||||
echo "✅ Watchdog uruchomiony w tle."
|
|
||||||
|
|
||||||
# Wgrywamy klucz publiczny ed25519
|
# Wgrywamy klucz publiczny ed25519
|
||||||
#echo "🔑 Wgrywam klucz publiczny ed25519..."
|
#echo "🔑 Wgrywam klucz publiczny ed25519..."
|
||||||
|
|
||||||
|
|
@ -97,8 +80,9 @@ ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "\
|
||||||
DevEUI=$(ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "uci get einfo.dev.gw_eui")
|
DevEUI=$(ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "uci get einfo.dev.gw_eui")
|
||||||
echo "✅ DevEUI urządzenia: $DevEUI"
|
echo "✅ DevEUI urządzenia: $DevEUI"
|
||||||
|
|
||||||
# Zmieniam haslo root
|
# Zmieniam haslo root i tworze katalog wes
|
||||||
ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "\
|
ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "\
|
||||||
|
mkdir -p /mnt/mmcblk0p1/wes/ &&\
|
||||||
sed -i -E 's|^(root:)[^:]*:|\1${NEW_HASH}:|' /etc/shadow"
|
sed -i -E 's|^(root:)[^:]*:|\1${NEW_HASH}:|' /etc/shadow"
|
||||||
|
|
||||||
#Instalacja Wireguard
|
#Instalacja Wireguard
|
||||||
|
|
@ -186,4 +170,16 @@ uci set system.@system[0].hostname=${HOSTNAME} && \
|
||||||
uci commit && \
|
uci commit && \
|
||||||
/etc/init.d/network restart"
|
/etc/init.d/network restart"
|
||||||
|
|
||||||
echo "🎉 Wszystko gotowe!"
|
echo "DevEUI: $DevEUI" >> $DevEUI".conf"
|
||||||
|
echo "Hostname: $HOSTNAME" >>$DevEUI".conf"
|
||||||
|
echo "ROOT_PASSWORD: $ROOT_PASSWORD" >> $DevEUI".conf"
|
||||||
|
echo "WIFI_SSID: $WIFI_SSID" >> $DevEUI".conf"
|
||||||
|
echo "WIFI_KEY: $WIFI_KEY" >> $DevEUI".conf"
|
||||||
|
echo "WGS_PUBLIC_KEY: $WGS_PUBLIC_KEY" >> $DevEUI".conf"
|
||||||
|
echo "Private key: $VPN_PRIVATE_KEY" >> $DevEUI".conf"
|
||||||
|
echo "Public key: $VPN_PUBLIC_KEY" >> $DevEUI".conf"
|
||||||
|
echo "VPN IP ADDRESS: $VPN_IP_ADDRESS" >> $DevEUI".conf"
|
||||||
|
echo "LORAWAN TTN: $LORAWAN_TTN_HOST" >> $DevEUI".conf"
|
||||||
|
|
||||||
|
echo "🎉 Wszystko gotowe!"
|
||||||
|
cat $DevEUI".conf"
|
||||||
Loading…
Reference in New Issue